Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/q2EGaEd9iXzkOAcIX0Yp0AXdwEA.roa
File: q2EGaEd9iXzkOAcIX0Yp0AXdwEA.roa (raw, json)
Hash identifier: W1CnyHrEAfBGV1wgrQXp7TPA2MewRqrZkfa8u/x9AXE=
Subject key identifier: AB:61:06:68:47:7D:89:7C:E4:38:07:08:5F:46:29:D0:05:DD:C0:40
Certificate issuer: /CN=480e3cf0d122574c7e7b3bf034d0d3d013eebc15
Certificate serial: 0183CDDD0426D8BD1F41ACCEA3B32E35914A
Authority key identifier: 48:0E:3C:F0:D1:22:57:4C:7E:7B:3B:F0:34:D0:D3:D0:13:EE:BC:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SA488NEiV0x-ezvwNNDT0BPuvBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/q2EGaEd9iXzkOAcIX0Yp0AXdwEA.roa
Signing time: Wed 12 Oct 2022 20:22:37 +0000
ROA not before: Wed 12 Oct 2022 20:22:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202647
IP address blocks: 2001:67c:ac0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:dd:04:26:d8:bd:1f:41:ac:ce:a3:b3:2e:35:91:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=480e3cf0d122574c7e7b3bf034d0d3d013eebc15
Validity
Not Before: Oct 12 20:22:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab610668477d897ce43807085f4629d005ddc040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b5:bc:ad:50:dc:04:bb:32:5a:fb:8c:e9:65:
b1:2d:7a:7d:a0:fa:aa:1b:8c:37:f5:e0:67:66:22:
42:68:45:c2:6f:e3:35:e2:49:a1:ae:c2:61:b8:98:
26:b1:18:95:96:39:74:ff:b0:fe:91:dc:c3:c0:91:
bc:78:45:9a:e3:a4:d0:a0:75:03:93:a1:6d:e9:dd:
00:0f:04:75:6a:5b:92:9c:b4:26:69:12:95:9c:1b:
60:17:a8:b7:c8:98:f5:c5:0a:4a:5b:8c:d6:ae:f6:
f5:f6:e7:91:9d:26:45:9e:80:02:44:54:f7:0f:b8:
ba:b1:cb:60:a3:95:82:ca:d4:b3:30:ab:e7:0b:4d:
12:d4:70:e5:fd:91:db:f5:74:29:7e:8c:ac:ee:60:
fc:bc:cf:71:e9:42:0c:63:83:98:bb:27:23:04:2e:
44:4f:25:ef:d7:16:c6:d4:01:0c:7d:6c:49:79:79:
43:39:71:67:2c:c9:a7:f6:2d:89:ea:b7:77:e5:64:
b5:fb:28:3d:27:25:20:22:41:37:5f:7a:f8:be:91:
a6:43:70:2c:14:13:a1:69:7f:3f:55:e5:37:26:c9:
d4:67:8b:5b:3d:fe:ec:c7:01:b4:bc:04:f2:4c:a3:
f5:c0:47:bd:99:81:d0:91:f4:37:1f:b5:45:16:3e:
76:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:61:06:68:47:7D:89:7C:E4:38:07:08:5F:46:29:D0:05:DD:C0:40
X509v3 Authority Key Identifier:
keyid:48:0E:3C:F0:D1:22:57:4C:7E:7B:3B:F0:34:D0:D3:D0:13:EE:BC:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SA488NEiV0x-ezvwNNDT0BPuvBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/q2EGaEd9iXzkOAcIX0Yp0AXdwEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/SA488NEiV0x-ezvwNNDT0BPuvBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:ac0::/48
Signature Algorithm: sha256WithRSAEncryption
1e:83:57:bc:85:cb:15:2b:6b:89:db:2c:72:d9:1d:fb:40:b4:
fb:ab:40:58:cd:7b:06:db:42:34:64:68:04:88:6e:c8:db:20:
3c:7c:ec:b8:61:5f:56:7a:4e:78:04:29:24:cb:3b:5f:e3:0c:
3a:75:7b:49:df:05:c8:cb:34:08:c6:a1:be:5c:77:4b:0f:65:
37:77:f5:ae:d7:6d:55:b8:09:3b:d1:65:b3:4e:dd:7f:76:ff:
be:be:13:c2:8a:6f:01:ca:c8:6c:1a:77:2f:b9:21:e4:cb:60:
42:22:b1:ef:ba:cf:c3:9e:b7:81:d7:29:9f:4f:d6:ab:94:92:
70:00:ce:fa:fc:40:53:23:49:40:35:a6:b1:0e:2e:e4:de:fd:
31:a5:4a:d7:0c:00:73:81:b0:09:d1:fa:e0:17:ff:67:18:a5:
fe:6d:e3:43:bd:5a:c2:a3:5b:8f:38:33:96:ce:c3:01:72:e4:
de:15:95:13:7c:de:e6:01:ff:1d:00:b8:be:18:e0:7c:03:20:
be:a9:ae:8b:60:72:16:74:6a:58:e7:ba:74:8e:ef:d7:7c:7e:
f3:e4:53:b4:8c:8a:a4:17:f6:87:b2:45:80:7b:4a:1c:33:c6:
af:fe:91:74:88:34:85:a0:b8:88:88:36:60:65:e6:cb:89:96:
ae:e6:ba:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org